Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/Ou036lXf7A_3MftCkvXKlqq1jz0.roa
File: Ou036lXf7A_3MftCkvXKlqq1jz0.roa (raw, json)
Hash identifier: dBuMi6+Y2pUcbq3yARaVn7ksBMmGTMU9Dkgp8KBLBpM=
Subject key identifier: 3A:ED:37:EA:55:DF:EC:0F:F7:31:FB:42:92:F5:CA:96:AA:B5:8F:3D
Certificate issuer: /CN=95e88359b95a3964ae6f9a0cdaae07f579f98c35
Certificate serial: 01910DA1F9A104DC4BD260AAA6F2A0B13A8C
Authority key identifier: 95:E8:83:59:B9:5A:39:64:AE:6F:9A:0C:DA:AE:07:F5:79:F9:8C:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leiDWblaOWSub5oM2q4H9Xn5jDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/Ou036lXf7A_3MftCkvXKlqq1jz0.roa
Signing time: Thu 01 Aug 2024 11:10:04 +0000
ROA not before: Thu 01 Aug 2024 11:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214684
IP address blocks: 193.18.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0d:a1:f9:a1:04:dc:4b:d2:60:aa:a6:f2:a0:b1:3a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e88359b95a3964ae6f9a0cdaae07f579f98c35
Validity
Not Before: Aug 1 11:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3aed37ea55dfec0ff731fb4292f5ca96aab58f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:64:4c:71:aa:63:2e:fc:24:df:f6:ba:a0:73:
f3:7f:bf:ce:2f:cb:1e:92:ad:3b:5e:81:29:d9:a0:
1c:f2:71:af:89:b6:52:60:e1:c3:27:7f:20:c8:34:
4b:39:af:87:dd:35:72:5b:93:9e:94:8a:9c:e3:2d:
8e:0a:9c:9d:53:94:41:c2:b8:65:0a:bb:ee:8c:b8:
4f:43:96:09:69:fc:4f:03:4f:81:a3:2b:17:76:60:
7d:07:7a:2d:2c:18:63:5c:e4:b5:ba:27:36:09:4e:
20:f3:a8:c7:d4:f8:08:33:bb:d3:cc:86:38:95:8b:
c0:f3:0d:c0:67:46:c2:51:bd:31:16:e1:52:94:89:
f8:ea:b1:a0:91:af:3b:12:c5:bc:0b:1d:dd:b1:cd:
56:7b:de:1a:1d:99:9e:bd:49:92:3d:d9:12:31:40:
ab:64:76:64:1b:72:03:a7:25:38:29:7c:19:f9:f4:
22:73:57:22:f8:a7:e2:a1:04:fc:6c:6b:ad:d3:48:
e9:be:d8:67:b2:a0:d8:d7:94:2e:12:d6:af:41:82:
4c:84:dc:71:e6:05:45:16:9b:13:21:ae:8b:0f:40:
32:8f:05:4d:26:8c:8f:0e:99:8c:30:c3:ce:98:8b:
2e:d7:46:33:e3:79:ca:19:7b:61:7d:d6:e0:d1:80:
61:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:ED:37:EA:55:DF:EC:0F:F7:31:FB:42:92:F5:CA:96:AA:B5:8F:3D
X509v3 Authority Key Identifier:
keyid:95:E8:83:59:B9:5A:39:64:AE:6F:9A:0C:DA:AE:07:F5:79:F9:8C:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leiDWblaOWSub5oM2q4H9Xn5jDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/Ou036lXf7A_3MftCkvXKlqq1jz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/leiDWblaOWSub5oM2q4H9Xn5jDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.18.199.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:44:fa:e0:40:90:6c:c9:c1:ea:d7:a9:4a:38:e8:01:b9:39:
0a:a7:d2:19:60:4b:84:a1:ca:14:0a:84:3a:7e:ba:09:99:a6:
ec:2d:8c:bc:18:4e:46:4d:d2:36:e9:ff:7e:09:65:12:27:a7:
e1:78:f4:bb:9a:78:3e:9a:75:73:53:ec:ba:4d:3d:3b:7a:bb:
d0:d0:14:00:5b:a7:44:eb:f5:d0:e9:ea:bf:71:21:9f:7a:ab:
30:13:9c:03:77:64:e3:27:36:95:cd:47:74:16:d3:a9:c9:6e:
f1:9d:be:4c:67:26:5d:25:02:e8:78:17:a5:75:53:ee:a1:35:
56:91:ad:6b:b1:bf:ac:31:71:16:98:e3:85:80:2d:ae:bf:82:
fd:be:d3:00:41:78:bf:92:77:64:43:86:c6:b0:80:aa:4e:7a:
54:87:cc:7d:9e:ac:69:a9:b8:dc:53:8d:59:63:e3:89:02:6b:
ed:de:ae:3b:11:89:97:fc:5c:df:8d:ea:5b:88:e9:ba:c4:25:
44:d1:07:45:c7:86:5d:cd:7d:7f:3e:d3:97:ff:13:8a:9e:1c:
c8:ab:d5:27:48:f1:df:2d:5c:3c:8b:67:1b:ae:c9:cd:f5:35:
63:9c:b8:9e:c2:72:ee:3a:48:a6:e1:38:b7:f5:da:2d:d9:62:
53:e0:96:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:13 2024 by rpki-client on console.sobornost.net